<html>
<head>
<style>
body {
font-family: Verdana, sans-serif;
font-size: 0.8em;
color:#484848;
}
h1, h2, h3 { font-family: "Trebuchet MS", Verdana, sans-serif; margin: 0px; }
h1 { font-size: 1.2em; }
h2, h3 { font-size: 1.1em; }
a, a:link, a:visited { color: #2A5685;}
a:hover, a:active { color: #c61a1a; }
a.wiki-anchor { display: none; }
hr {
width: 100%;
height: 1px;
background: #ccc;
border: 0;
}
.footer {
font-size: 0.8em;
font-style: italic;
}
</style>
</head>
<body>
<span class="header"></span>
Issue #407 has been updated by Samer -.
<ul>
</ul>
I tried to approach this but I got stuck. I thought we should sign the packages with a generic key for Kune (like Ubuntu does) so I created a GPG RSA key for kune@op just for signing (not for encrypting). However, later the instructions say that, in order to do it automatically:<br />"your packages will be automatically signed as long as the name and email address in your package’s changelog file are the same as that of the GPG key you created" <br />As the changelog usually has vjrj's name and email, then I wonder that, to avoid complications and being able to do it automatically, we should sign the package with his key.
        <ul>
        <li>If we do, then I'd discard the created Kune key and wait till vjrj does it. </li>
                <li>If we don't, then i'd continue working on this with the Kune key I created (uploading it to the key repository, signing, etc).</li>
        </ul>
<hr />
<h1><a href="http://redmine.ourproject.org/issues/407#change-525">Defect #407: Sign deb package</a></h1>
<ul>
<li>Author: Samer -</li>
<li>Status: New</li>
<li>Priority: Normal</li>
<li>Assignee: </li>
<li>Category: Others</li>
<li>Target version: </li>
<li>Resolution: </li>
<li>Tags: </li>
</ul>
<p>The deb package is distributed unsigned. The APT repository and the Debian packages should be signed.</p>
        <p>Ref:<br /><a class="external" href="http://blog.mycrot.ch/2011/04/26/creating-your-own-signed-apt-repository-and-debian-packages/">http://blog.mycrot.ch/2011/04/26/creating-your-own-signed-apt-repository-and-debian-packages/</a></p>
<hr />
<span class="footer"><p>You have received this notification because you have either subscribed to it, or are involved in it.<br />To change your notification preferences, please click here: <a class="external" href="http://redmine.ourproject.org/my/account">http://redmine.ourproject.org/my/account</a></p></span>
</body>
</html>